A threat actor using the handle lucy is selling compromised email accounts from police departments in first-world EU countries for $1,000 each. Buyers are instructed to use these accounts to submit fraudulent emergency data requests and impersonate EU law enforcement to extract data from platforms like Meta, Google, Telegram, WhatsApp, TikTok,…
Category: Cyber Attack
Play ransomware group claims to have breached multiple organizations across the United States and Germany and added them to its extortion portal. The actor threatens to release private and financial data, including client documents, payroll records, identification, and tax records, unless demands are met by March 6, 2026. #PlayRansomware #Cabka…
The Handala Hack Team claims to have breached multiple Middle Eastern energy sector entities, naming Sharjah National Oil Corporation and Israel Opportunity Energy among its alleged victims. The actor says the breach of Sharjah National Oil Corporation resulted in the exfiltration of 1.3 terabytes of sensitive information. #HandalaHackTeam #SharjahNationalOilCorporation…
Ngong Ping 360 experienced a cyber attack and the incident is currently under investigation. The company has implemented measures to protect its users’ data. #NgongPing360 #np360
On 27 February 2026 the Municipality of Langenzersdorf was hit by a cyber attack that made its internal network unavailable and forced the suspension of town hall operations. Security experts are working to restore systems while the municipality asks residents to avoid email requests for now; daily life and critical infrastructure were not affected. #Langenzersdorf #TownHall
Norway’s national arts program Den kulturelle skolesekken (DKS), managed by Kulturtanken, was allegedly breached with an actor claiming to have exfiltrated a database and posting samples on a cybercrime forum. The leak reportedly contains 1,389,534 rows of personal and operational data including names, contact details, addresses, nationalities, languages, internal communications, and…
The Anubis ransomware group claims it breached AkzoNobel and exfiltrated sensitive corporate and client data from one of the company’s branches. AkzoNobel allegedly refused to pay the ransom, and the stolen files reportedly include client contacts, NDAs, business correspondence, financial records, employee IDs and passport scans, and product details. #AnubisRansomware #AkzoNobel…
The Dragonforce ransomware group claims to have breached Fundação Getulio Vargas (FGV), a leading Brazilian educational and research institution. The actor alleges approximately 1.52 TB of organizational data were exfiltrated, including personal identifiers, financial and employment records, student academic information, and internal administrative and legal documents. #Dragonforce #FGV…
The Rhysida ransomware group claims to have breached Southold Town Senior Services and the Southold Police Department in New York. The actor says the stolen data is being auctioned to a single buyer with a 10 BTC starting price and a seven-day timer, though specific categories of compromised information were not…
BE-ATEX, a French gas detection and safety equipment company, has reportedly been compromised after an unknown user on a cybercrime forum claimed to have scraped data from its internal administrative panel and shared screenshots of the dashboard and equipment tracking systems. The actor says the breach exposed over 2,200 customer records…
An IT security incident targeted a mobile device management system used by the Konstanz city administration. Administrative operations were not affected, and only a small number of employee records appear to have been compromised; citizen, customer and business partner data are currently believed to be unaffected. #KonstanzCityAdministration #MobileDeviceManagement
A threat actor using the handle HexDex is offering for sale a dataset of 116,122 records allegedly taken from Santeo.net, the French health insurance comparison platform operated by CAPIFINANCE. The dataset reportedly spans 2001–2026 and contains extensive PII—including 102,236 unique email addresses, roughly 100,000 phone numbers, full names, dates of birth,…
A threat actor named empathy leaked the DevChallenges database in February 2026, publishing 20,218 user records for free download. The dump includes user profiles (display names, emails, GitHub usernames, avatar and social links, bios, skills, locations, UUIDs) and subscription and feedback invoice records that link payment activity to individual accounts. #empathy…
CHS Villach, a school in Carinthia, was hit by a hacker attack that encrypted its data. The incident was contained, recovery is underway, and authorities are investigating while officials say they prevented any data theft. #TheGentlemen #CHSVillach
A malicious software has been detected on the mobile device management system operated by the CTIE, rendering access to internal State services via mobile devices unavailable. Services remain accessible via computers, and the incident was reported on 2026-02-26. #CTIE #GouvernementLU